WordPress Plugin Vulnerabilities

Simple Membership < 4.3.5 - Account Takeover via Password Reset

Description

The Simple Membership plugin for WordPress is vulnerable to account takeover due to missing input validation on the process_password_reset_using_link function in versions up to, and including, 4.3.4. This makes it possible for authenticated attackers to gain access to arbitrary accounts on the site via the password reset functionality.

Affects Plugins

Plugin icon
simple-membership
Fixed in 4.3.5

References

CVE
CVE-2023-41956
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/e53bb240-8784-4d34-8d3f-4a7af917f3f4

Miscellaneous

Original Researcher
Rafie Muhammad
Verified
No
WPVDB ID
5dbffa2f-d3c5-4bd4-8bea-0daed3fe859e

Timeline

Publicly Published
2023-09-25 (about 2 years ago)
Added
2023-11-24 (about 2 years ago)
Last Updated
2023-11-24 (about 2 years ago)

Other

Published
Title
Published
2018-12-13
Title
WordPress <= 5.0 - User Activation Screen Search Engine Indexing
Published
2023-10-25
Title
All In One WP Security < 5.2.5 - Protection Bypass of Renamed Login Page via URL Encoding
Published
2016-05-26
Title
Jetpack 2.0-4.0.2 - Shortcode Stored Cross-Site Scripting (XSS)
Published
2024-11-15
Title
Popup by Supsystic < 1.10.30 - Admin+ Remote Code Execution
Published
2014-12-02
Title
Ninja Forms <= 2.8.9 - Unspecified Issue Affecting Admin Users